A improper validation of certificate with host mismatch in Fortinet FortiTokenAndroid version 5.0.3 and below, Fortinet FortiTokeniOS version 5.2.0 and below, Fortinet FortiTokenWinApp version 4.0.3 and below allows attacker to retrieve information disclosed via man-in-the-middle attacks.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://fortiguard.com/advisory/FG-IR-21-024 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: fortinet
Published: 2022-07-18T16:35:56
Updated: 2024-08-03T18:30:24.005Z
Reserved: 2021-01-04T00:00:00
Link: CVE-2021-22131
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-07-18T18:15:08.620
Modified: 2022-07-25T15:12:27.933
Link: CVE-2021-22131
Redhat
No data.